Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json)
Hash identifier: lLF2KaBrconDhG+OUd39GsIH0vLeX3+w6KG5JvvHJvI=
Subject key identifier: 72:8D:1F:96:7E:E1:72:6B:E2:C5:A4:87:B5:26:30:7A:D2:90:3F:16
Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7
Certificate serial: 019EC29238A424C99C1CDC178FDC71E7A2C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
Manifest number: 1846
Signing time: Sat 13 Jun 2026 20:00:23 +0000
Manifest this update: Sat 13 Jun 2026 20:00:23 +0000
Manifest next update: Sun 14 Jun 2026 20:00:23 +0000
Files and hashes: 1: AfDUmyK_-yRdfu3oY0w-ZmuI_n8.roa (hash: LsPuKpZEctSg8i+4uevFKA+sYuA+iu39H7g8hC66rsA=)
2: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: GQ3dEMgXMBS6pLLOXZRbrwheYHNwC7Wbsjw681JzWAo=)
3: REMby4Ya31OA35rY4teZSHIa0ew.roa (hash: XyeGvAoenWA3MJIYVq931n9fMFmepWjFnS5c3uEtCFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:38:a4:24:c9:9c:1c:dc:17:8f:dc:71:e7:a2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7
Validity
Not Before: Jun 13 20:00:23 2026 GMT
Not After : Jun 14 20:00:23 2026 GMT
Subject: CN=728d1f967ee1726be2c5a487b526307ad2903f16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:f6:4b:69:e9:c0:16:47:c6:bc:6a:f1:5a:
15:4d:d5:de:a2:21:68:13:5b:c0:29:09:26:a3:3e:
ce:fa:f6:02:1e:2a:fa:d7:2f:e2:8f:d1:53:a5:aa:
a6:d1:ac:2a:c2:c2:b2:46:e7:9f:cf:61:60:b4:b9:
dc:3d:c3:17:97:b7:71:cc:57:28:4e:bc:9c:e3:9c:
74:0d:88:6d:89:b7:f1:db:11:1b:68:a7:bc:c7:f9:
cd:3d:e9:39:1c:6a:30:20:b0:20:cf:5e:b3:43:6c:
f7:d2:28:0c:40:bb:2d:be:a8:11:81:7a:5a:f7:22:
27:68:6b:4a:9c:c6:7b:12:ee:50:3f:b9:96:db:d3:
90:02:c0:aa:6d:53:d2:d9:5c:c4:57:ec:f1:b1:90:
4d:d0:ae:b2:9e:44:f8:e8:6d:a5:ac:68:98:74:50:
25:25:c8:c0:25:33:54:b1:66:26:bc:6b:9e:5d:0a:
3a:b6:8f:96:04:84:02:b1:67:1c:df:05:97:75:1d:
b9:15:1b:78:46:d9:b6:29:3b:ab:7b:50:73:19:3e:
da:41:a6:b7:32:8d:34:b0:e0:db:11:03:65:d3:8f:
6d:86:e8:d8:1b:15:b6:5d:bc:95:61:e4:26:e7:d2:
8f:99:e5:40:2d:a5:e3:4a:11:73:11:fd:02:09:ec:
0a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8D:1F:96:7E:E1:72:6B:E2:C5:A4:87:B5:26:30:7A:D2:90:3F:16
X509v3 Authority Key Identifier:
keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ee:82:e5:75:97:7e:91:78:0a:e6:72:71:dd:a2:6b:d4:bf:
c7:f7:ad:dd:42:83:bd:bd:29:36:17:7e:57:1a:b1:bf:32:ae:
f8:b3:64:27:12:aa:99:c9:d8:20:ed:ea:e8:69:74:97:5e:6b:
85:88:0d:ff:e8:45:87:8d:38:a0:7b:bb:5b:68:6c:38:03:43:
70:8e:02:0d:20:d7:12:af:24:15:a5:af:18:81:aa:99:dd:a7:
ab:e4:78:f4:67:2f:90:79:9e:f1:56:77:25:52:46:b1:f8:f2:
78:86:6c:2b:8d:7d:52:93:d7:3c:80:07:da:f0:22:f1:e3:e6:
39:f2:e3:b1:1a:de:03:4d:f7:7f:f8:fa:21:f5:04:f9:f1:37:
de:87:db:30:14:16:f2:ac:d0:d1:ac:ef:fb:c1:49:0b:b6:9e:
ed:14:ce:e2:a0:89:d9:11:6e:12:1b:9b:d4:5b:77:07:b6:21:
76:b7:2f:56:86:94:5b:7b:b6:7f:5b:50:ca:6b:c2:55:c0:4b:
aa:ff:f9:ef:b3:bc:6c:37:13:9c:c3:f1:a5:c3:1f:00:6d:88:
77:f1:6a:20:62:d0:57:15:99:8c:90:f0:ec:27:3b:1d:f3:9d:
c0:e4:ea:c8:c9:f2:2b:0d:23:02:24:5a:14:91:54:00:e2:3f:
46:36:d9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:45:36 2026 by rpki-client